EUVD-2022-38791

Malicious code in bioql PyPI...

PT-2022-23037 · Nextcloud · Nextcloud Password Policy

Name of the Vulnerable Software and Affected Versions: Nextcloud Password Policy versions prior to 22.2.10 Nextcloud Password Policy versions prior to 23.0.7 Nextcloud Password Policy versions prior to 24.0.3 Description: The random password generator in Nextcloud Password Policy may, in very rar...

Inadequate Encryption Strength

Overview randompasswordgenerator is a generates a random password with various useful options. Affected versions of this package are vulnerable to Inadequate Encryption Strength due to the use of Kernelrand to generate passwords, which, as a result of its cyclic nature, can facilitate password...

CVE-2019-25061

The randompasswordgenerator aka RandomPasswordGenerator gem through 1.0.0 for Ruby uses Kernelrand to generate passwords, which, due to its cyclic nature, can facilitate password prediction...

OmniAuth Ruby gem 安全漏洞

The OmniAuth Ruby gem is an authentication system that uses Rack middleware. Ruby gem 1.0.0 and earlier versions have a security vulnerability in randompasswordgenerator aka RandomPasswordGenerator, which can be exploited by an attacker to facilitate password prediction...